tag:blogger.com,1999:blog-4598847262086640368.post331489102584661548..comments2012-05-13T20:35:40.666-07:00Comments on A Temporary Halt to Mordor: Malware Again 10/19/2011Goldenstarhttp://www.blogger.com/profile/08866826569918080168noreply@blogger.comBlogger18125tag:blogger.com,1999:blog-4598847262086640368.post-31048006750606465612011-10-21T07:34:49.360-07:002011-10-21T07:34:49.360-07:00Could it be malware being served from the ad serve...Could it be malware being served from the ad servers ?Furismhttps://www.blogger.com/profile/08952288422083130604noreply@blogger.comtag:blogger.com,1999:blog-4598847262086640368.post-16687185213859961402011-10-20T09:10:53.903-07:002011-10-20T09:10:53.903-07:00Just curious: are other sites hosted with the same...Just curious: are other sites hosted with the same host affected? You can update things on your end, but if the host doesn&#39;t do its apache updates and stuff, you still will end up getting hacked.<br /><br />When the host says your stuff isn&#39;t up-to-date when it actually is, I would sack them. That&#39;s no customer service when the first thing they do is telling it&#39;s your own fault.Ingehttps://www.blogger.com/profile/13657389193053177895noreply@blogger.comtag:blogger.com,1999:blog-4598847262086640368.post-44210025825161589072011-10-20T06:03:27.152-07:002011-10-20T06:03:27.152-07:00I&#39;m not sure if this will help, but there is c...I&#39;m not sure if this will help, but there is currently a mass attack of websites. Sophos has provided some analysis at the site below. Check any PHP scripts which may be in the site.<br /><br />http://nakedsecurity.sophos.com/2011/10/19/analysis-of-compromised-web-sites-hacked-php-scriptsetohttps://www.blogger.com/profile/18419883490524786379noreply@blogger.comtag:blogger.com,1999:blog-4598847262086640368.post-37701571054031091842011-10-20T02:25:21.500-07:002011-10-20T02:25:21.500-07:00Hope you get it sorted soon. gotta admit it is su...Hope you get it sorted soon. gotta admit it is suspicious that you get hacked again so soon after the last hack and when there&#39;s a charity drive going onEmerald Foxhttps://www.blogger.com/profile/16063442833380881913noreply@blogger.comtag:blogger.com,1999:blog-4598847262086640368.post-64423221692095131652011-10-19T21:47:03.534-07:002011-10-19T21:47:03.534-07:00I hope you get it resolved soon. My hunch is that...I hope you get it resolved soon. My hunch is that your host is on the right track; the problem very well be in your theme or a plugin. There have been reports of a large number of hacks through a vulnerability in TimThumb.php, which is used in a lot of themes and plugins:<br /><br />http://markmaunder.com/2011/08/01/zero-day-vulnerability-in-many-wordpress-themes/Minnesota Chrishttps://www.blogger.com/profile/06845889773710471719noreply@blogger.comtag:blogger.com,1999:blog-4598847262086640368.post-660771193836912292011-10-19T21:13:54.890-07:002011-10-19T21:13:54.890-07:00In fact, a lot of people consult and use your site...In fact, a lot of people consult and use your site, you cleaned your bases and your host checked everything BUT the malware could be on one of the intervener posting on your site, without this one be aware of it, and each time this intervener would use or upload something on your site ..... you are infected again. May be ask to all the people uploading on your site to check their own bases and computer ....Moranaehttps://www.blogger.com/profile/03401289664835717551noreply@blogger.comtag:blogger.com,1999:blog-4598847262086640368.post-17617290142960434182011-10-19T18:38:44.420-07:002011-10-19T18:38:44.420-07:00Sorry to hear that! I hope its not too difficult t...Sorry to hear that! I hope its not too difficult to get it fixed.Deborah Grayhttps://www.blogger.com/profile/02547241518076671790noreply@blogger.comtag:blogger.com,1999:blog-4598847262086640368.post-77299459582617043152011-10-19T17:04:05.408-07:002011-10-19T17:04:05.408-07:00For all the festival folks looking for last years ...For all the festival folks looking for last years guide.<br /><br />http://web.archive.org/web/20110207205905/http://www.casualstrolltomordor.com/2010/10/fallfestival2010/Jon Andristhttps://www.blogger.com/profile/10075887153147161700noreply@blogger.comtag:blogger.com,1999:blog-4598847262086640368.post-22878564811845476332011-10-19T16:55:49.165-07:002011-10-19T16:55:49.165-07:00Yes, someone please confirm it&#39;s drops the GRE...Yes, someone please confirm it&#39;s drops the GREEN horse!!! I&#39;ll park all my chars in there till the end of the fest if that&#39;s the case!!!Weldonhttps://www.blogger.com/profile/08660179537470661027noreply@blogger.comtag:blogger.com,1999:blog-4598847262086640368.post-28784164758170119122011-10-19T15:08:46.784-07:002011-10-19T15:08:46.784-07:00Wait..the glowing green one? I&#39;d only gotten c...Wait..the glowing green one? I&#39;d only gotten confirmed reports of it dropping last years.Jon Andristhttps://www.blogger.com/profile/10075887153147161700noreply@blogger.comtag:blogger.com,1999:blog-4598847262086640368.post-71858840442422326542011-10-19T14:21:11.240-07:002011-10-19T14:21:11.240-07:00I just noticed when i got a warning while trying t...I just noticed when i got a warning while trying to enter your site... good luck fixing it!<br /><br />Just wanted to post a comment about a kinmember i showed the Poorly Hidden Chest in the Haunted Burrow. He didnt know how to find it or what drops from that chest. I tried all of my 9 chars and no Mount drop... his first try and he got the Glowing Green Skeleton Mount! Life is soooo unfair! But im really happy for my Kinnie! ;)Padmehttps://www.blogger.com/profile/11152715642487279883noreply@blogger.comtag:blogger.com,1999:blog-4598847262086640368.post-84282760356779466892011-10-19T14:10:54.117-07:002011-10-19T14:10:54.117-07:00Geez, of course, they only go after the popular an...Geez, of course, they only go after the popular and heavy trafficked sites.. so there is that :)Weldonhttps://www.blogger.com/profile/08660179537470661027noreply@blogger.comtag:blogger.com,1999:blog-4598847262086640368.post-78441033800182084012011-10-19T13:33:45.387-07:002011-10-19T13:33:45.387-07:00Oh guys I am so sorry! I hope it gets resolved aga...Oh guys I am so sorry! I hope it gets resolved again soon. Why in the world do Russian hackers want to hack your site?? Just to be mean? Jeez.cosmeticlotrohttp://cosmeticlotro.wordpress.com/noreply@blogger.comtag:blogger.com,1999:blog-4598847262086640368.post-9020341850695699672011-10-19T13:11:08.355-07:002011-10-19T13:11:08.355-07:00I have to admit I&#39;ve not used this, but I&#39;...I have to admit I&#39;ve not used this, but I&#39;ve read that this plugin can catch some of the more obvious attacks:<br /><br />http://www.seoegghead.com/software/wordpress-firewall.seo<br /><br />or<br /><br />http://wordpress.org/extend/plugins/wordpress-firewall-2/Minnesota Chrishttps://www.blogger.com/profile/06845889773710471719noreply@blogger.comtag:blogger.com,1999:blog-4598847262086640368.post-27460666043605010222011-10-19T12:56:27.924-07:002011-10-19T12:56:27.924-07:00Good luck Goldenstar and Merric...the last hack I ...Good luck Goldenstar and Merric...the last hack I had to fix required a reinstall of Wordpress, but it was a small site and didn&#39;t take much effort to restore.<br /><br />And thanks Caleb for the resource - looks like some great advice!Minnesota Chrishttps://www.blogger.com/profile/06845889773710471719noreply@blogger.comtag:blogger.com,1999:blog-4598847262086640368.post-59456717346745021012011-10-19T12:54:39.632-07:002011-10-19T12:54:39.632-07:00The host blamed the last hack on WP or our theme. ...The host blamed the last hack on WP or our theme. Specifically that I don&#39;t update things (which is untrue, there was nothing on our site that wasn&#39;t up to date). I installed exploit scanners and none of them found anything with wordpress. I&#39;ve checked our wordpress files and nothing appears to have been modified.<br /><br />I&#39;m not convinced that this hacking is due to our negligence despite what we keep being told.Jamiehttps://www.blogger.com/profile/09913593162292728969noreply@blogger.comtag:blogger.com,1999:blog-4598847262086640368.post-60179796852320969392011-10-19T12:47:58.696-07:002011-10-19T12:47:58.696-07:00Not sure if this is of any help: http://digwp.com/...Not sure if this is of any help: http://digwp.com/2010/07/wordpress-security-lockdown/ but it has resources about wordpress security.Caleb Kesterhttps://www.blogger.com/profile/01374989272282287883noreply@blogger.comtag:blogger.com,1999:blog-4598847262086640368.post-26992751042302918752011-10-19T12:38:40.974-07:002011-10-19T12:38:40.974-07:00Ok, that really sucks, I hope you get it running p...Ok, that really sucks, I hope you get it running properly again soon.Joelhttps://www.blogger.com/profile/06231281247044096806noreply@blogger.com